Casaba Security

World-class IT security takes a unified approach to planning, staffing, implementation and management. Casaba works as an integrated partner providing leadership and support in the development and execution of end-to-end security programs, teams and processes.

Casaba has the specialized expertise and flexibility needed to assess and assure the security of your most critical software and infrastructure assets. We can assemble a surgical security task force with the capabilities to quickly identify and resolve vulnerabilities.

Cyber crime costs $445 Billion annually

A breach hurts all around, from costly data loss to bad PR to expensive response and fixes. We can help by designing and testing your products with you, and exercising your detection and response capabilities.

Our Tools

We offer these as a service to the community. Our tools come with no commitment to maintenance and no claims to warranty. Use at your own risk.

Implemented as a cross-platform library developed in C and C++, UCAPI hinders visual spoofing attacks by recognizing the visually confusable characters and similar strings from a wide variation of languages being employed. Partially based on Unicode TR39, UCAPI can provide software vendors with safety options not currently available in Win32 or .NET libraries.

A plugin for the free Fiddler HTTP proxy, Watcher passively audits a web application to find security bugs and compliance issues automatically. Safe for production use, Watcher acts as an assistant to the developer by quickly identifying issues that commonly lead to security problems in web apps. No configuration required.

An XSS testing plugin for the free Fiddler HTTP proxy, x5s actively injects tiny probes of ASCII and Unicode into every user-controlled input of a Web-application in order to elicit and identify character transformations and encoding issues that could lead to XSS vulnerability. x5s is automatic and easy to run.